Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft
File: OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft (raw, json)
Hash identifier: qOfGuySOQY9OObwhTj+LIScAhsCIvXMLh/TZVm04rPE=
Subject key identifier: 08:33:53:E4:2F:3F:C1:40:FD:4C:9C:53:93:33:BA:22:A3:90:0A:1F
Authority key identifier: 38:72:8E:9B:D3:73:99:DF:9F:FA:E5:87:BD:06:88:4B:35:0A:65:B7
Certificate issuer: /CN=38728e9bd37399df9ffae587bd06884b350a65b7
Certificate serial: 0198820C3B713140332B7A6AAE362F0998BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OHKOm9Nzmd-f-uWHvQaISzUKZbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft
Manifest number: 1506
Signing time: Thu 07 Aug 2025 01:01:36 +0000
Manifest this update: Thu 07 Aug 2025 01:01:36 +0000
Manifest next update: Fri 08 Aug 2025 01:01:36 +0000
Files and hashes: 1: OHKOm9Nzmd-f-uWHvQaISzUKZbc.crl (hash: MGHNwJUS0xD0Zi0ZXqGoeoFWmsTEV+ChuJKYQ+LxKig=)
2: VIlea1HGjGCn_MVKwJV926-pJjE.roa (hash: A01QP610OFwth+XnetlpJQSsjmOQSdq9hALxJi5jMPw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft
rsync://rpki.ripe.net/repository/DEFAULT/OHKOm9Nzmd-f-uWHvQaISzUKZbc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 23:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:82:0c:3b:71:31:40:33:2b:7a:6a:ae:36:2f:09:98:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38728e9bd37399df9ffae587bd06884b350a65b7
Validity
Not Before: Aug 7 01:01:36 2025 GMT
Not After : Aug 8 01:01:36 2025 GMT
Subject: CN=083353e42f3fc140fd4c9c539333ba22a3900a1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:82:06:e4:a8:79:0c:ac:2c:7e:bf:8d:6f:1a:
34:da:2f:1b:ae:0b:52:83:d5:d9:21:d2:5f:ba:27:
5d:da:c9:bb:19:2a:21:50:66:90:f4:67:95:a1:52:
03:56:48:06:28:5e:75:26:e6:79:44:a8:8d:02:54:
f6:14:1d:38:de:f7:56:b9:6b:8c:7e:23:ef:8f:51:
d1:bc:f0:9c:97:56:a4:4c:ca:39:ce:3c:c3:d0:da:
6b:35:e6:8a:92:0f:6d:c0:a5:55:9f:27:42:ad:6a:
de:a6:e0:b4:b4:e9:8f:c4:07:76:08:2b:45:9b:97:
37:4d:d3:76:f7:7a:72:a2:c3:c0:26:60:b9:d5:7d:
1a:2a:d8:eb:a0:cf:60:bd:61:2b:39:1f:8b:f3:10:
4d:67:c3:68:bf:1b:d0:b4:b8:fa:ad:82:0e:77:e1:
e4:bb:e5:66:e3:78:93:35:a3:28:7d:84:72:fc:db:
cb:fc:26:5d:b5:37:81:a9:56:30:01:25:76:05:40:
e3:8f:5b:d1:4f:b3:05:32:14:5a:77:d6:16:c2:96:
a0:d7:57:3c:9b:3f:96:35:0c:63:e7:88:77:19:d9:
09:a6:c4:ea:bf:4b:9d:5f:92:be:6c:5c:e2:6e:05:
62:09:f9:ef:e3:3b:9f:0a:bc:19:d4:b2:19:c9:5b:
82:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:33:53:E4:2F:3F:C1:40:FD:4C:9C:53:93:33:BA:22:A3:90:0A:1F
X509v3 Authority Key Identifier:
keyid:38:72:8E:9B:D3:73:99:DF:9F:FA:E5:87:BD:06:88:4B:35:0A:65:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OHKOm9Nzmd-f-uWHvQaISzUKZbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c7:3c:15:d4:16:12:f7:bb:ab:93:81:e2:11:18:78:3f:d9:c6:
4b:4f:71:a0:8c:21:85:7b:bb:a8:d5:36:de:38:d0:3a:26:36:
c8:37:9b:b8:26:a4:0f:97:ec:80:f9:2f:41:05:e1:b3:7b:d7:
90:58:dc:31:4b:f3:0b:c1:28:9e:99:d0:dc:34:50:62:b6:bd:
97:57:08:82:c3:b7:b6:c5:ae:03:b0:93:cc:87:63:d7:04:59:
48:c1:7b:3a:53:6b:85:f5:3f:ba:ec:92:59:00:68:87:97:07:
4a:07:ff:63:6e:0c:b0:38:bf:61:32:0f:58:1f:b5:ae:cf:9f:
f2:d0:6c:14:e2:75:49:c3:e8:6e:b1:78:fa:60:86:79:3a:a9:
ba:ff:af:ac:11:e9:3a:d2:62:11:7c:f2:3a:07:7f:04:6d:23:
c2:a8:fa:2d:a2:f1:63:03:97:3c:c2:9e:84:56:35:e7:a2:9e:
95:1f:27:09:b3:5c:68:59:dc:bd:0b:a0:8c:89:79:3b:eb:83:
3b:04:78:35:df:1d:0d:b5:5b:22:bb:a2:f2:69:b3:49:49:6c:
df:79:59:d9:f1:51:6d:3e:da:84:af:31:bf:84:16:40:6b:83:
2a:97:74:3a:fe:19:79:2d:2f:f4:94:6d:17:59:d4:86:ba:54:
06:56:4c:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 07:18:18 2025 by rpki-client